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VIRUS RESISTANT AND HARDWARE INDEPENDENT METHOD OF 

FLASHING SYSTEM BIOS 



Field of the Invention 

The present invention relates generally to the B-IDS 
of a general purpose computer and more particularly to 
techniques for allowing the BIOS to be reprogrammed that 
are resistant to inadvertent or unauthorized 
reprogratraning of the BIOS . 

Description of Related Art 

j-rhe BIOS (Basic In/Out System) is generally a piecei 
of software or code stored in a specific memory area of 
a computer. The computer uses the BIOS to get itself 
started properly when turned on. The BIOS may be used. 
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from time to time, thereafter to help manage data 
transactions between hardware and programs. 

Many electronic devices that do not operate like 
standard personal computers have begun to incorporate 
BIOS into their circuitry. For example, a modem may 
include an 80C186 microprocessor which utilizes a BIOS. 
Furthermore, CD and tape writers, laser and ink jet 
printers which contain microcontroller or microprocessor 
based computing circuitry have begun to incorporate a 
BIOS of some kind for use at start up to get the ^device 
operating and running when turned on. 

some PC (personal computer) operating systems (e.g., 
Linux, NT) have dispensed with the services of the BIOS 
while the system is running, but they all require^ ^ 
rely on the BIOS when the PC is started or turned on. A 
PC chipset (the majority of interconnect and control 
circuitry of a PC found within a few chips on a PC 
motherboard) has many configurable options, such as 
memory and bus timing, port configuration and so on, 
which are configured by the BIOS at start up. However, 
an inoperable computer results if the options are not 
configured correctly by the BIOS at start up. 



4 



At one time the BIOS were programmed into ROM chips 
on the PC mother board. The BIOS ROM chips could not be 
reprogrammed, but instead had to be replaced with a newly 
progreunmed BIOS ROM chip. 
5 As ROM chips became programmable, EEPROM's, and 

Flash ROMS began to be used for BIOS chips. In 
particular. Flash ROMs can be programmed without being 
removed from a circuit board. This is useful in the 
personal computer industry because a Flash ROM BIOS chip 
10 ("Flash BIOS") can be reprogrammed ("flashed") and 

upgraded with new data without opening the chassis of the 
personal computer. 

At present, there are various computer systems that 
allow the BIOS code to be flashed. Before a presently 
15 existing computer system flashes the system BIOS, the 
flash (reprograraming) application generally verifies that 
the BIOS image to be programed/ flashed into the Flash 
BIOS is a correct size or has a correct file name for the 
computer, but in present systems it is not possible to 
actively check the BIOS image to make sure it will be 
compatible with the computer it will be loaded into. 
Furthermore, at present it is not possible to program a 
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Flash ROM BIOS in a "protected programming" mode of the 
computer's operating system such as while operating in 
Windows '95 or '98. Thus, ROM BIOS flashing must be 
performed in a "real" mode operating system such as MS- 
DOS. A drawback of this technique of flashing the BIOS 
is that the verification code required for flashing the 
ROM BIOS exists as an executable file that may be found 
and disassembled by a hacker. The hacker could easily 
discern sufficient information from the disassembled code 
to create a flash ROM BIOS image that will be accepted as 
a BIOS image and render the computer unusable. 

There are some other serious problems associa4:ed- 
with the ability of a computer user to Flash his own 
computer's BIOS. For example, suppose a user wanted to 
upgrade the information in his Flash BIOS. He would have 
to obtain a new BIOS program from the computer 
manufacturer, the worldwide web, or another source. Then 
to perform the Flash BIOS upgrade, the user would 
initiate a "burner" program on his PC. That is, the 
burner program will use circuitry built into the PC-'^ 
mother board (provided it supports flash upgrading) and 
erase the existing data/ information in the Flash BIOS 
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chip and then program or load the new BIOS 
data/ information into the chip. This is all fine and 
good unless an inappropriate BIOS program obtained and 
then loaded into the Flash BIOS is used. If an 
5 inappropriate BIOS program was loaded into the BIOS chip, 
the user's computer would be rendered inoperable. 

Another problem, as discussed above, is that a 
hacker could write a computer virus that could initiate 
the burner software and Flash the BIOS of an unsuspecting 
10 user's computer thereby rendering the computer 
inoperable. 

Thus, there is a need for a computer system that 
resists having its BIOS flashed so that an incompatible 
BIOS program, other data, or no data is left in tdie- 

15 memory area where the BIOS program is kept. Furthermore, 
there is a need for a computer system that has a virus 
resistant and hardware independent method for flashing 
the BIOS so that only a system compatible BIOS code can 
be flashed into the Flash BIOS chip. 

20 fiiiimnai-v ^-ha Tnvention. 

In one embodiment of the present invention a 
computer system comprises a hard disk drive where a BIOS 
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image can be stored on a magnetic media. If a user wants 
to reprogram a ROM BIOS part with the BIOS image, a 
utility program is executed. The utility program 
generates a software system management interrupt in order 
to trigger a handler program. The handler program is 
stored in the system management memory portion of RAM 
which is inaccessible to a user. The handler program 
checks the BIOS image for a specific code to determine 
whether the BIOS image is a certified BIOS image that is 
certified for the operating computer system. If the 
handler program determines that the BIOS image is 
certified, then it will reprogram the ROM BIOS part^^w±«i 
the certified BIOS image. 

nf»sr:T-jnt ^"" of thp Drawinqs- 
Various objects and advantages of this invention 
will become apparent and more readily appreciated from 
the following description of the presently preferred 
exemplary embodiments, taken in conjunction with the 
accompanying drawings of, of which: 
20 FIGURE 1 depicts an exemplary computer systsocrUiafc: 

may incorporate an exemplary embodiment of the present 
invention. 
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FIGURE 2 depicts a flow chart of an exemplary method 
for flashing ROM BIOS in accordance with thia present 
invention; and 

INVENTION 3 depicts an exemplary diagram of hardware 
and software relationships in accordance with the present 
invention. 



p^i-;.-ii^r> nf^scr Tp^inn of l-.he Presently Preferred 
KvftTOpiarv Kmbodiments. 

Exemplary embodiments of the present invention will now 
be described. The invention may be embodied in many 
different forms and should not be construed as limited to 
the embodiments set forth herein; rather, these 
embodiments are provided so that this disclosure will be 
thorough and complete, and will fully convey important 
aspects of the present invention to those skilled in the 
art. 

Referring first to FIGURE 1, selected portions of a 
general computer or personal computer (PC) 100 are shown 
that incorporates an exemplary embodiment of the present 
invention. Upon start up of the PC 100, the mos. 
program, stored in a Flash ROM BIOS memory 102, is 
interpreted by the central processing unit ("CPU") 104. 
The BIOS is a piece of code that the PC 100 uses to get 
itself started when the computer is switched on. In some 
cases, the BIOS is ftirther utilized to manage data 
transactions between hardweure and programs. Hardware 
that is "set up" by the BIOS may include RAM memory 106, 
hard or floppy disk drives 108, input/ output circuitry 
110, and modem circuitry 112. 
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There may be times that a user wants to upgrade or 
reprogram the flash BIOS 102. Furthermore, a malicious 
hacker may attempt to write a 'virus* program that is 
directed to flashing the Flash BIOS 102 with a new 
invalid or corrupted BIOS program or BIOS image. In 
either case, an exemplary embodiment of the present 
invention will help prevent the user or the virus program 
from flashing a system BIOS with a 'non-certified* or 
non-compatible BIOS image. By preventing the BIOS from 
being flashed with an invalid, uncertified or 
incompatible BIOS program, computer repair costs are 
avoided and the computer 100 operates as a more reliable 
system to the user. 

In one embodiment of the present invention, all -the 
hardware dependent code that is utilized to flash the ROM 
BIOS is kept in an inaccessible SMM (system management 
memory) segment. Additionally e prior to copying the 
hardware dependent code to a SMM segment of memory, the 
code only exists in a disassembly resistant compressed 
format. Fxirthermore, an exemplary computer system will 
flash the BIOS only during an SMI (system management 
interrupt) mode, thus, it is possible to reprogram or 



flash the ROM Bios when the computer system is operating 
in a real mode (e.g., a MS-DOS mode), a virtual Intel 
8086 mode or a protected mode (e.g., MS-DOS with a 
virtual memory manager such as EMM 386.exe, while 
5 operating in Windows '95, '98, NT). 

Preferably, the present invention makes it extremely 
difficult for a hacker or user to detemnine how to update 
or flash the current flash ROM BIOS because the necessary 
code required to flash the BIOS rxins only dxiring a System 

10 Management Interrupt ('SMI') mode. There is essentially 

extremely limited mechanisms to enable a hacker or user 
to step through the code operating during a SMI mode to 
figure out what the code does to flash the ROM BIOS. Th^ 
code is operated in a portion of the computer memory that 

15 is hidden to other programs; the code that flashes the 

BIOS is only • visible • to the BIOS when the computer is 
processing an SMI. 

Furtheraore, the firmware within the computer 
circuitry that is used to flash the Bios requires the 

20 BIOS image (the new BIOS data that a user wants to have 

flashed into the existing Flash ROM BIOS part) to have a 
means for verifying that the BIOS image is compatible 



10 



with the computer it is about to be placed into. The 
means for verification could be a checksxua added to the 
end, middle or other location in the BIOS image. The 
means for verification could be that the BIOS image comes 
in an encrypted format that is understood by the specific 
model of computers for which it can be installed in. The 
intent of the means for verifications is so that the 
computer will not allow its BIOS to be flashed unless the 
BIOS image can be verified or certified as a valid, 
certified or authentic BIOS image for the particular 
computer model. 

Referring again to FIGURE 1, a BIOS image that may 
be later flashed into the ROM BIOS 102 can be provi^ied 
and stored in a computer 100 a variety of ways. T?he 
image can be provided via a floppy drive, hard drive, zip 
drive 108 or other data storage medium. Furthermore, the 
BIOS image could be downloaded from a global network 
(such as the Internet) , retrieved from a LAN or WAN, or 
provided via a phone line modem or other external data 
connection via an I/O Port 110. 

FIGURE 2 depicts a flow chart describing both an 
exemplary process of creating a certified ROM BIOS image 
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and exemplary steps for updating or flashing the ROM BIOS 
part. An exemplary process for creating a certified BIOS 
image begins at step 200 wherein a ROM BIOS image is 
processed to create a certified ROM BIOS image. There 
are a variety of ways to process a BIOS image to certify 
it. Three exemplary technicpies for certifying a ROM BIOS 
image are presented, but one of ordinary skill in the art 
could discern other certification techniques. One 
technique for creating a certified BIOS image is to 
encrypt the entire BIOS image using a private key known 
only to the SMI handler software. The ROM image, can be 
decrypted with the private key and then it can -^e 
established that the decrypted image is a certified im^et 
before being flashed into the ROM BIOS. If the ROM image- 
cannot be decrypted with the private key, then it is 
certainly not certified. Each model of computer woul.d 
contain a different private key, thus encrypted. -BIOS 
images could only be used in computer models having the 
correct private key in the SMI handler to decrypt the 
BIOS image. 

A second technique for creating a certified BIOS 
image is to have a hidden check sum or cyclical 
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redundancy check ( ' CRC • ) embedded into the BIOS image at 
an offset or predetermined code location that is only 
known by the SMI handler. The offset could be stored in 
the SMI handler during a iaanuf acturing process. It is 
not important what the offset or location is except that 
the SMI handler code knows where to look in a BIOS image 
for the certification information. 

A third technique for creating a certified ROM BIOS 
image that a user may want to flash into his computer's 
flash ROM BIOS part 102 is to attach or append an 
encrypted checksxim or cyclic redundancy check (• CRC • ) to 
the end of the BIOS image using a private k^. The 
private key would be known only to the SMI handier- 
software of similar computer models. The SMI handler 
would aid in decrypting the checkstim or CRC to determine 
if the BIOS image is a certified image and appropriate to 
be loaded into the ROM BIOS part of the computer. Once 
a certified BIOS image is established for the peorticular 
computer models then the certified BIOS image can be 
provided by the manufacturer of the computer to users— for ~ 
their computers. The user's computer, upon rec e i pt of 
the BIOS images, will have the means to determine whether 
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a received BIOS image is certified or valid as an 
appropriate BIOS for the particular computer. Beginning 
at step 202, an exemplary technic[ue for determining 
whether the BIOS image is an appropriate certified BIOS 
image and the steps of flashing the certified BIOS image 
into the ROM BIOS part is disclosed. 

In some cases a memufactxirer will provide a software 
file or files with a plurality of BIOS images. Each BIOS 
image being intended for a different computer model. In 
steps 202 and 204 the computer's firmware or preloaded 
computer software must determine which one of a plurality 
of BIOS images is the appropriate BIOS image for being 
loaded into the RAM BIOS part of the particular compu4:er. 

At step 202 a hardware independent BIOS nsRshr 
utility gathers information from an ACPI table found in 
an ACPI supporting BIOS, but created by the resident BIOS 
code at start up. In the preferred embodiment the 
filename, the file size and the software SMI port 
location is gathered from the ACPI table. The file name 
is preferably the name of the file where the BIOS—image 
for the particular computer is found* The file size 
information is the size of the BIOS image file. The 
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software SMI port is the I/O port location that generates 
a software SMI when written to. 

In particular , an exemplary hardware independent 
flash utility searches the RAM memory addresses OEOOOOH 
through OFFFFFH for the ACPI table signatxire "RSD PTR." 
If the signature is not found, the utility displays an 
error message and terminates. If the signature is found, 
the application reads the following items from the ACPI 
table: the OEM Table ID in the Root System Description 
table (RSD) which is a field that contains the file 
information to derive the flash BIOS file name; 2) and 
the SMI port address in the Fixed ACPI Description Table. 
The SMI port address is the address of the SMI port that 
provides the SMI interrupt. 

At step 204 the hardware independent BIOS flash 
utility reads the BIOS image found in the file name, 
specified in step 202, into preferably a contiguous block 
or continuous block of RAM memory. The CPU registers are 
set to indicate the location and size of the stored BIOS 
image. 

At step 206, the hardware independent BIOS flash 
utility passes a flash signature or other data 
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information into one or more CPU registers to indicate 
that a flash update is indeed requested, desired and 
intentional . 

At step 208, the BIOS flash utility generates a 
software SMI by writing a code to the software SMI I/O 
port. The code could be all or a portion of the flash 
signature that was passed into one or more of the CPU 
registers in step 206. The result is that an SMI occurs. 
Flashing of the ROM BIOS can only occur in an exemplary 
embodiment during a software SMI event. 

In step 210, the Software SMI handler begins 
operating and validates the flash signature^ Again, the 
flash signature indicates that a flash update is 
requested, desired and intentional. If the software SMI 
handler determines that the flash signature is not valid, 
then the flash BIOS process is stopped and an error is 
displayed to the user at steps 212 and 214. 

If the flash signature is valid at step 212, then 
the SMI handler proceeds to step 216 where the SMI 
handler utilizes a private key or other information only 
known to the SMI handler (as discussed in step 200) to 
determine whether the BIOS image is a certified BIOS 
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image. A certified BIOS image is a BIOS image that is 
correct for the current computer system. By requiring 
the SMI handler to have a private key or other 
information to decrypt a portion of or otherwise 
determine that the BIOS image is a certified BIOS image, 
hackers and inexperienced computer users are thwarted 
from flashing a ROM BIOS part with an inappropriate BIOS 
image. 

If the BIOS image in RAM is not certifiable by the 
software SMI handler, then the flashing processes is 
stopped and an error message is displayed in steps 218 
and 214. 

If the BIOS image, stored in RAM, is certifiable- by 
the Software SMI handler in steps 216 through 218, then 
a write enable signal is provided to the ROM part in step 
200. The write enable signal may be a general purpose 
I/O that has to be turned on or off, The general purpose 
I/O location would also have to be known only to the SMI 
handler code and should not be known or accessible in any 
other place in the computer so that'lt would be extremely 
difficult for a hacker to learn how to enable a 'signal to 
the ROM BIOS part and have them flashed. 
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In step 221, the BIOS SMI handler writes the BIOS 
image to the ROM BIOS part (i.e., flashes the ROM BIOS 
part) . The write enable signal is disabled or made 
inactive in step 222. At this point the BIOS image has 
5 been loaded into the ROM BIOS part in the place of the 

preexisting ROM BIOS code. In step 223, the process of 
flashing the BIOS ends without an error 

Referring now to FIGURE 3, a general flow of data or Q 
information between various subsystems and 
10 software/ firmware on and off a computer motherboard is 

shown for implementing an exemplary virus resistant ROM 
BIOS flashing method and invention. 

It is noted that the flash utility 300, the flash 
image 310, the operating system 304, the software handler 
15 306, the RAM flash image 308, and the ACPI table 310 are 

all software, firmware, or data code. 

in an exemplary embodiment, a user or virus program 
will request that the flash utility 300 be executed in 
order to have a new BIOS image 302 flashed into the 
20 present ROM BIOS part 314. The BIOS image 302 judy li n ve -r 
been stored in a storage media such as a harddisk or 
floppy drive 316. The flash utility 300 retrieves a 
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needed BIOS file name and file size information from an 
ACPI table 310 stored in RAM Memory 312. The correct 
BIOS image 302 can then be retrieved from the storage 
media 316 and placed in a continuous block of RAM 308. 
The flash utility will then instruct an ACPI chipset 318 
to provoke a software SMI interrupt, but only after the 
CPU provides a flash signature indicating that the 
request for flashing the BIOS is intentional. The 
software, SMI handler then determines whether the flash 
image stored in RAM 308 is a certified BIOS image. The 
certification is established via a secret encryption key 
or other secret data only known by the SMX. qoftware 
handler which is used to check the BIOS image for- 
authenticity and certification. 

Since the SMI handler only operates when a software 
SMI interrupt is applied; and since the SMI handler is 
stored in a user inaccessible part of RAM, it is 
extremely difficult for a hacker to determine the secret 
code or information required or used to certify a BIOS 
image. Thus, if the software SMI handler does— not - 
certify the BIOS image, then the ROM BIOS part cannot be 
flashed. 
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The exemplary embodiments thus establish a virus 
resistant method for flashing ROM BIOS. The embodiments 
have a need for '.a certified BIOS image that would be 
extremely hard for a hacker to create since the 
information is hidden in the software SMI handler. The 
software SMI handler code is substantially inaccessible 
to a user or hacker because it is located in a portion of 
memory which is a system management memory segment (SMM Q 
segment) and, in addition, only exists in a dissembly 
resistant compressed format when not being used. 

Although various preferred embodiments of the 
invention and method have been shown and described, it 
will be appreciated by those skilled in the -aarJ: that 
changes, both insignificant and significant, can b& made- 
to these embodiments without departing from the 
principles and the spirit of the invention, the scope of 
which is defined in the appended claims* 
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KHAT 18 CLAIMED X6: 

1 1. A computer system comprising: 

2 a hard disk drive for receiving and storing a BIOS 

3 image; 

4 a Flash ROM BIOS part adapted to be flashed with. 

5 said BIOS image; 

6 a RAM memory for receiving and storing said BIOS 

7 image from said hard disk when said BIOS image is to be 
d flashed into said Flash ROM BIOS part; and 

9 a software. SMI handler program for determining 
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1 
2 
3 

1 
2 



whether said BIOS image is a certified BIOS image for a 
particular computer system prior to allowing said- BIOS 



12 image to be flashed into said Flash ROM BIOS part. 



2. The computer system of claim 1, wherein said 
software SMI handler program further includes a code that 
is substantially inaccessible to a computer user. 

3. The computer system of claim 1, wherein said 
software SMI handler can only be accessed via a softwaije- 



3 SMI interrupt. 
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1 4. The computer system of claim 1, wherein said 

2 BIOS image comprises at least an encrypted portion, said 

3 encrypted portion being decrypted by said software SMI 

4 handler program. 



1 
2 
3 



1 
2 
3 
4 



5.. The computer system of claim 4, wherein said 
software SMI handler program uses said encrypted portion 
to determine whether said BIOS image is said certified 



4 BIOS image. 



6. The computer system of claim 1, wherein said 
BIOS image comprises at least one of a CRC and a check 
sum, said at least one of a CRC and a check sum being 
used by said software SMI handler program to determine 
5 whether said BIOS image is said certified BIOS image. 

1 7. The computer system of claim 1, wherein said. 

2 software SMI handler program is a hardware independent 

3 program. 



22 



1 

2 



1 
2 



8. The computer system of claim 1, wherein said 
software SMI handler program is stored in a system 



3 management memory segment of memory. 



9. The computer system of claim 1, wherein said 
software SMI handler program exists in a disassembly 

3 resistant compressed format. 

1 10. A method for providing a certified image, said 

2 method including the steps of: 

3 creating a BIOS image; and 

4 , postprocessing said BIOS image to create a certified 

5 BIOS image, said certified BIOS image comprising at least 

6 . a predetermined code that can be interpreted by a progr-am- 

7 found on a predetermined computer model. 

1 11. The method for providing a certified BIOS image 

2 of claim 10, wherein said predetermined code con^rises at 

3 least one of a public key, a checksum, a CRC, and an 

4 encrypted portion. 
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1 12. A method for flashing a ROM BIOS part in a 

2 computer system, said method comprising the steps of:' 

3 determining a Flash BIOS file name and a Flash BIOS 

4 file size; 

5 determining a software SMI port interrupt; 

6 placing a BIOS image having said determined Flash 

7 BIOS file name and said Flash BIOS file size into RAM; 

8 using a flash BIOS signature to indicate that f ) 

9 flashing said BIOS is intentional; 

10 generating a software SMI interrupt; 

11 executing a specific code during said software SMI 

12 interrupt to determine whether said BIOS image- is - a 

13 certified BIOS image for said computer system; and 

14 flashing said ROM BIOS part if said BIOS image xs" 

15 determined to be said certified BIOS image. 

1 13. The method for flashing said ROM BIOS part in 

2 said computer system of claim 12, wherein said BIOS image 

3 having said deterained Flash BIOS file name and said 

4 Flash BIOS file size is placed in a continuous blocdE=jafI_ 

5 RAH. 
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^ . 14. The method for flashing said ROM BIOS part in 

2 said computer system of claim 12, wherein said step of 

3 executing a specific code includes a step of decrypting 

4 a predetermined portion of said BIOS image. 

1 15. The method for flashing said ROM BIOS part in 

2 said computer system of claim 12, wherein said step of 

3 executing a specific code includes a step of checking at @ 

4 least one of a check sum and a CRC found in a 

5 predetermined portion of said BIOS image. 

1 16. A method for reprogramming a ROM BIOS part in 

2 a computer system, said method comprising the steps- of 3 

3 determining whether a user intentionally initiated 

4 a ROM BIOS part reprogramming; 

5 establishing that a ROM BIOS image is a certified 

6 ROM BIOS image that is compatible with said computer ^ 

7 system; and 

8 reprogramming said ROM BIOS part if said ROM BIOS 

9 image is a certified ROM BIOS image. 
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1 17. The method for reprogramming said ROM BIOS part 

2 in a computer system of claim 16, wherein said step of 

3 determining utilizes a program initiated by a software 

4 SMI. 

1 18. The method for reprogramming said ROM BIOS part 

2 in a computer system of claim 16, wherein said step of 

3 establishing comprises a step of running software stored 

4 in a system management memory segment of a RAM in 

5 response to a software SMI. 

1 19. The method for reprogramming said ROM BIOS part 

2 in a computer system of claim 16, wherein said of 

3 establishing comprises a step of decrypting at least a 

4 predetermined portion of said BIOS image with a private 

5 key. 

1 20. The method for reprogrzimming said ROM BIOS part 

2 in a computer system of claim 16, wherein said step of 

3 reprogramming said ROM BIOS part includes ^ -step, of 

4 flashing said ROM BIOS part with said ROM BIOS image. 
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ABSTRACT OF THE DISCLOStJRE 
A system and method for making sure that before the 
ROM BIOS of a personal computer is reprogrammed, the BIOS 
image is compatible with the computer whose BIOS are 
being reprogrammed. This is done by requiring the 
utility that performs the reprogramming of the ROM BIOS 
to have a secure portion of code that is stored in a 
portion of the computer's memory that is inaccessible to 
a user. The secure portion of code is used to make sure 
that the BIOS image to be programmed into the computer is 
compatible with the computer. 



27 



^11 vf 




27757-400 
1/3 



LAN PHONE LINE 
OR 

-INTERNET CONNECTION 



100 



110 



V I/O 



102 



FLASH 
ROM- 
BIOS 
PART 



CPU 



RAM 



HARD DISK 
aOPPYv DRIVE 



ACPI 
CHIPSET 



COMPUTER 



105 



108 



FIG. 1 



27757-400 
2/3 



ROM BIOS IMAGE 
POST PROCESSED TO 
CREATE CERTIRED 
ROM BIOS IMAGE 



•200 



HARDWARE INDEPENDENT 
BIOS FLASH UTILITY 
PARSES ACPI TABLE 
TO DETERMINE : ~ 

1. aASH BIOS RLENAME 
AND FILESIZE 

2. SOFTWARE SMI PORT 



■202 



B 



HARDWARE INOEPENDEIff 
BIOS FLASH UTILITY 
READS FLASH BIOS 
IMAGE INTO RAM 



204 



HARDWARE INDEPENDENT 
BIOS FLASH UTILITY 
LOADS FLASH SIGNATURE 
INTO CPU REGISTERS TO 
INDICATE THAT THE BIOS 
aASH IS INTENTIONAL 



■206 



FIG. 2 



HARDWARE INDEPENDENT 
BIOS FLASH UTILITY 
GENERATES A SOFTWARE 
SMI BY WRITING ONE OF 
THE FtASHING SIGNATURE 
BYTES TO THE SOFTWARE 
SMI PORT 



208 



BIOS SOFTWARE SMI 
HANDLER VAUDATES 
FLASH SIGNATURE 



•210 



H 



ENABLE WRITE VOLTAGE 
TO FLASH ROM PART 




BIOS SOFTWARE SMI 
HANDLER CERTIRES ROM 
IMAGF IN RAM 



BIOS SOFTWARE HANDLER 
WRITES FLASH IMAGE TO 
FLASH PART 



DISABLE WRITE VOLTAGE 
TO FtASH ROM PART 



STOP WITH 



214 



■221 



222 



STOP WITH 
NO ERROR 



•223 



27757-400 
3/3 



312L 




FLOPPY DRIVE 



FIG. 3 



This Paee is Inserted by IFW Indexing and Scanning 
OpSns and is not part of the Official Record 

BEST AVAILABLE IMAGES 

Defecfve images within this document are accurate representations of the original 
documents submitted by the apphcant. 

Defects in the images include but are not limited to the items checked: 

pBLACK BORDERS 

□ IMAGE CUT OFF AT TOP, BOTTOM OR SIDES 

□ FADED TEXT OR DRAWING 

□ BLURRED OR ILLEGIBLE TEXT OR DRAWING 

□ SKEWED/SLANTED IMAGES 

□ COLOR ORBLACK AND WHITE PHOTOGRAPHS 

□ GRAY SCALE DOCUMENTS 

Klines OR MARKS ON ORIGINAL DOCUMENT 

□ REFERENCE(S)OREXHmiT(S) SUBMITTED ARE POOR QUALITY 

□ OTHER: 

IMAGES ARE BEST AVAILABLE COPY. 
ATmcanhing these documents will not correct the image 
JjoWems checked, please do not report these problems to 
the IFW Image Problem Mailbox. 



